THREATOPS
THREAT OPSCVEs › CVE-2018-18325

CVE-2018-18325 — DotNetNuke (DNN) Inadequate Encryption Strength Vulnerability

CISA KEVExploited: confirmedDotNetNuke (DNN)

DotNetNuke (DNN) contains an inadequate encryption strength vulnerability resulting from the use of a weak encryption algorithm to protect input parameters. This CVE ID resolves an incomplete patch for CVE-2018-15811.

Vulnerability details